Senior Cybersecurity Enterprise Architect

About The Position

Requirements

• 15–20 years of hands-on experience in cybersecurity architecture within large-scale enterprise environments
• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field (equivalent experience considered)
• Deep expertise in Zero Trust Architecture frameworks including CISA ZTMM 2.0 and NIST SP 800-207
• Demonstrated experience with CDM program implementation in a federal environment
• Proficiency with enterprise endpoint protection platforms including Qualys, Palo Alto XDR, and Microsoft Defender for Endpoint (MDE)
• Experience with log management and analytics platforms including Splunk, Guardium, and VMware
• Strong background in identity and access management, authentication technologies (F5, PIV/smart card, VLDAP), and enterprise directory integration
• Knowledge of federal IT security requirements including FISMA, NIST SP 800-53, FedRAMP, EO 14028, and OMB M-22-09
• Experience supporting hybrid cloud and on-premises enterprise infrastructure
• Ability to plan, test, and scale deployments in high-availability enterprise environments
• Excellent written and verbal communication skills with demonstrated ability to brief senior government leadership

Nice To Haves

• Prior experience supporting IRS or Treasury Department cybersecurity programs as a prime, subcontractor, or second-tier subcontractor
• Intimate knowledge of IRS log architecture, data center environments, or IRS-specific systems (BEARS, TIGTA, LOGC)
• Experience supporting a federal security operations center (SOC)
• Registration or familiarity with the DHS CISA CDM Approved Products List (APL)
• Relevant certifications such as CISSP, SABSA, TOGAF, or equivalent

Responsibilities

• Design, develop, and maintain the IRS enterprise cybersecurity reference architecture aligned with Zero Trust Architecture (ZTA) principles and DHS Continuous Diagnostics and Mitigation (CDM) program requirements
• Serve as the primary architecture adviser to IRS CTO and CIO-level leadership on cybersecurity strategy, technology investment, and modernization roadmap
• Lead planning and design efforts for CDM capability implementation across asset management, identity credentialing, network security, and data protection domains
• Provide technical leadership across all five ZTA pillars: identity, device, network, application, and data
• Evaluate and recommend emerging cybersecurity technologies for adoption and integration into the IRS hybrid cloud/on-premises environment
• Identify and drive tool consolidation efforts to reduce redundancy and technical debt across the security tool stack
• Participate in architecture review boards, technical working groups, and governance bodies
• Develop and maintain architecture documentation, design artifacts, and technical standards
• Ensure security-by-design is embedded across all IRS systems, applications, and cloud migrations
• Support evaluation of Palo Alto product integrations (Prisma, XSIAM) and Microsoft O365 G5 security suite enhancements including DLP and MCAS